Security

Security | News, how-tos, features, reviews, and videos

cso execsessions thumbnail 16x92 copy
video

CSO Executive Sessions / ASEAN: Huang Shao Fei on AI and other technologies

programming / coding elements / lines of code / development / developers / teamwork
News

Splunk adds new security and observability features

a hooded figure targets a coding vulnerability
News Analysis

55 zero-day flaws exploited last year show the importance of security risk management

Cybercriminals are now exploiting zero-day vulnerabilities for higher profits, which might require a reassessment of your risk.

innovation co innovation startup venn overlapping partnering iot by pettycon via pixabay
News Analysis

Landmark UK-Israeli agreement to boost mutual cybersecurity development, tackle shared threats

The 2030 Roadmap for Israel-UK Bilateral Relations promises ongoing cooperation in tackling cyberthreats, governing global cyberspace, developing cybersecurity skills, and investing in the cybersecurity ecosystem.

An IT technician works on laptop in data center, with other IT staff in the background.
News

Average enterprise storage/backup device has 14 vulnerabilities, three high or critical risks

State of Storage and Backup Security Report 2023 reveals significant gap in the state of enterprise storage and backup security compared to other layers of IT and network security.

certification woman on laptop programmer devops data scientist by picjumbo
News

Backslash AppSec solution targets toxic code flows, threat model automation

New cloud-native solution aims to address time-consuming, manual methods for discovering and mapping application code security risks.

virus chatbot chatcpgt security binary code cybersecurity infosec information data leak
Feature

Sharing sensitive business data with ChatGPT could be risky

ChatGPT and similar large language models learn from the data you put in — and there are big risks in sharing sensitive business information with AI chatbots.

Palo Alto Networks
News

Ping Identity debuts decentralized access management system in early access

A new decentralized identity management system from Ping Identity promises fewer headaches and more robust security.

CSO > Microsoft Office > Patches + updates
News

As critical Microsoft vulnerabilities drop, attackers may adopt new techniques

As critical Microsoft software vulnerabilities decline, attackers will need to chain together less severe exploits to achieve code execution, elevate system privilege levels, and move around victim networks.

Palo Alto Networks
News

Developed countries lag emerging markets in cybersecurity readiness

Organizations in Asia-Pacific countries including Indonesia, the Philippines, Thailand, and India are generally more prepared for cyberattacks than their peers in more economically developed nations, according to a new Cisco report....

1887170134 attack surface programming abstract
Feature

9 attack surface discovery and management tools

The main goal of cyber asset attack surface management tools is to protect information about a company’s security measures from attackers. Here are 9 tools to consider when deciding what is best for the business.

Two developers collaborate on a project as they review code on a display in their workspace.
News

ForgeRock, Secret Double Octopus offer passwordless authentication for enterprises

ForgeRock is adding Enterprise Connect Passwordless to its Identity Platform to provide no-code and low-code approaches for enterprises to add passwordless authentication to their IT infrastructure.

A magnifying lens exposes an exploit amid binary code.
News Analysis

CISA kicks off ransomware vulnerability pilot to help spot ransomware-exploitable flaws

The CISA pilot program will notify organizations of vulnerabilities that can lead to ransomware attacks, with small organizations the primary beneficiaries.

Ransomware
News

BianLian ransomware group shifts focus to extortion

The shift in the operating model comes as a result of Avast’s release of a decryption tool that allowed a victim of the BianLian ransomware gang to decrypt and recover their files without paying the ransom.

email popup warning window phishing cybersecurity security
How-To

7 guidelines for identifying and mitigating AI-enabled phishing campaigns

Phishing has always been a thorn in the side of enterprise cybersecurity, and recent AI developments such as ChatGPT are making things even worse. Here are some guidelines for dealing with the increasingly sophisticated phishing...

hand at keyboard with Windows logo
News Analysis

Two Patch Tuesday flaws you should fix right now

Vulnerabilities affecting both Outlook for Windows and Microsoft SmartScreen were patched recently — both could have wide-ranging impact.

iot security startups hot highlights planets rocket lock security
Feature

Cybersecurity startups to watch for in 2023

These startups are jumping in where most established security vendors have yet to go.

tiktok logo small
News

UK bans TikTok on government devices over data security fears

The UK has joined international partners in banning social media app TikTok from government electronic devices over concerns the Chinese-owned app could pose a security risk.

shutterstock 1858812901 red team cyberspace red background
Feature

Why red team exercises for AI should be on a CISO's radar

As AI increasingly becomes part of systems under development, CISOs need to start considering the cyber risks that may originate from such systems and treat it like any traditional application, including running red team exercises.

south asia from space night india shutterstock 1840428529
News

Russian hacktivist group targets India’s health ministry

The Phoenix group claims to have access to all hospital systems in India and information on hospital employees and chief physicians.

Load More